Releases: panther-labs/pySigma-backend-panther
Releases · panther-labs/pySigma-backend-panther
v0.2.5
What's Changed
- version bump by @arielkr256 in #70
- 0.2.5 version bump by @arielkr256 in #71
Full Changelog: v0.2.4...v0.2.5
Contributors
arielkr256
Assets 2
v0.2.4
What's Changed
- Bump actions/setup-python from 5.1.1 to 5.2.0 by @dependabot in #68
- Python format default by @arielkr256 in #67
- THREAT-365 CrowdStrike protocol transformation bug by @arielkr256 in #64
- Bump step-security/harden-runner from 2.9.1 to 2.10.1 by @dependabot in #69
- Add pipelines for Windows Audit and Log Sources by @arielkr256 in #66
Full Changelog: v0.2.3...v0.2.4
Contributors
dependabot and arielkr256
Assets 2
v0.2.3
What's Changed
- Added black to top level dependencies list by @melenevskyi in #41
- Bump black by @le4ker in #42
- Update converter to support new pysigma version by @akozlovets098 in #43
- Use harden-runner Action for all Workflows by @egibs in #45
- GCP Audit Pipeline: detection by keywords by @akozlovets098 in #44
- Use full Action SHAs rather than versioned releases by @egibs in #46
- Bump step-security/harden-runner from 2.8.0 to 2.8.1 by @dependabot in #47
- -p panther should be default when no pipeline is specified by @akozlovets098 in #49
- Non-implemented LogTypes should not create rules by @akozlovets098 in #48
- Bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in #50
- Unnecessary Ignored Error messages by @akozlovets098 in #51
- Not echoing converted rules by @akozlovets098 in #52
- Make GCP Audit part of -p panther by @akozlovets098 in #53
- Bump step-security/harden-runner from 2.8.1 to 2.9.0 by @dependabot in #55
- pySigma Pipeline: SentinelOne by @akozlovets098 in #56
- Added CIDR rules transformation by @akozlovets098 in #59
- Bump actions/setup-python from 5.1.0 to 5.1.1 by @dependabot in #54
- EDR pipelines should only convert implemented rule types by @akozlovets098 in #58
- Update package version by @akozlovets098 in #60
- Bump step-security/harden-runner from 2.9.0 to 2.9.1 by @dependabot in #61
- bugfix - FDREvent not converting TargetFileName to event.TargetFileName by @akozlovets098 in #63
Full Changelog: v0.2.2...v0.2.3
Contributors
melenevskyi, le4ker, and 3 other contributors
Assets 2
v0.2.2
What's Changed
- Replaced Crowdstrike dependency with plain code by @melenevskyi in #28
- Renamed panther_sdyaml backend to panther and added sdyaml as formatt… by @melenevskyi in #29
- Add GCP Audit pipeline by @melenevskyi in #30
- Fix ParentBaseFileName field name error by @melenevskyi in #31
- Updated tests for backend by @melenevskyi in #32
- Add _simple prefix to converted file name and rule id by @melenevskyi in #34
- pySigma-backend-for-Python by @akozlovets098 in #33
- Update README.md by @arielkr256 in #35
- added missing inversion logic by @arielkr256 in #36
- Remove
anyandallwhen only 1 condition by @akozlovets098 in #37 - Rename panther_sdyaml pipeline by @akozlovets098 in #38
- Replace xml with defusedxml by @melenevskyi in #39
- Change package name by @melenevskyi in #40
Full Changelog: v0.2.1...v0.2.2
Contributors
melenevskyi, arielkr256, and akozlovets098
Assets 2
v0.2.1
v0.2.0
What's Changed
- Simplified nested AND filters by @akozlovets098 in #24
- Add pipeline prefixes to converted rules/files by @melenevskyi in #25
- Update pysigma to 0.11 by @melenevskyi in #26
Full Changelog: v0.1.3...v0.2.0
Contributors
melenevskyi and akozlovets098
Assets 2
v0.1.3
What's Changed
- Added status to rule description by @akozlovets098 in #20
- Added GitHub to log types detection by @akozlovets098 in #21
- Bump deps by @melenevskyi in #22
- Bump deps by @melenevskyi in #23
New Contributors
- @akozlovets098 made their first contribution in #20
Full Changelog: v0.1.2...v0.1.3
Contributors
melenevskyi and akozlovets098
Assets 2
v0.1.2
v0.1.1
v0.1.0
What's Changed
- Review existing code by @melenevskyi in #1
- pySigma Pipeline: Process Creation -> EDR Data Model by @melenevskyi in #2
- Update README.md by @le4ker in #3
- TR-55: pipeline for CrowdStrike by @melenevskyi in #4
- TR-22: Added Okta to log types detection by @melenevskyi in #5
- TR-21: Added AWS CloudTrail log types detection by @melenevskyi in #6
- Updated Crowdstrike fields mapping by @melenevskyi in #7
- Added Carbon Black Panther pipeline by @melenevskyi in #8
- Tweaks in sdyaml metadata by @melenevskyi in #9
- Update fields mapping for file events by @melenevskyi in #10
- Fixed mac os rules detection and crowdstrike pipeline specific rules by @melenevskyi in #11
- update carbonblack pipeline so it can be run alone by @arielkr256 in #12
- Fixed severity mapping by @melenevskyi in #13
- Added separate pipeline for crowdstrike by @melenevskyi in #14
- Added mapping of Protocol for crowdstrike and carbon black by @melenevskyi in #15
- Added tests for RuleIContainsDetectionItemCondition by @melenevskyi in #16
New Contributors
- @melenevskyi made their first contribution in #1
- @le4ker made their first contribution in #3
- @arielkr256 made their first contribution in #12
Full Changelog: https://github.com/panther-labs/pySigma-backend-panther-sdyaml/commits/v0.1.0
Contributors
melenevskyi, le4ker, and arielkr256